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Abstract 

In this paper, we will examine models of substructural logics in Agda. 
The reason for this is that most existing models formalise intuitionistic 
logic and are entirely unsuitable to modelling substructural logics. In 
recent years, however, substructural logics have seen a surge in usage. 

Concretely we present the reader with an explicit model of intuition- 
istic logic, and derive models for linear logic and the Lambek-Grishin 
calculus. In addition, we show how to reify proofs in these logics into 
terms in Agda. All this is implemented as an Agda library, which is made 
available on GitHub. 

Finally we conclude with an example from formal linguistics in which 
we demonstrate one possible usage of our implemented Agda library. 

1 Introduction 

You can find implementations of the simply-typed lambda calculus in Agda 
all across the web — for instance, the implementations by Mazzoli (2013), Erdi 
(2013) or Mu (2008). It is used as a running example in Norell's Introduction 
to Agda, and Erdi goes as far as to call it the "FizzBuzz of dependently-typed 
programming" — the problem that any capable programmer in the field should 
be able to solve. 

Though each of these implementation has its own merits, they are all loosely 
based on the following model of the simply- typed lambda calculus. 1 

data _h_ : {k : N} (T : Vec Type k) (A : Type) -> Set where 
var : (x : Fin k) — > f h lookup x f 
abs : A, rhB— >I~I-A => B 

app : Tl-A => B^ri-A^ri-B 

The advantages of using such a model are plenty. For instance, you can use 
Agda's built-in type-checker to verify the correctness of your proofs; and you 
can use the interactive proof assistant to develop your proofs. 

This paper has three main contributions; we will present 

1 lt should be noted that for the sake of readability in this paper implicit arguments are 
often left out. Any undefined variable that is encountered upon reading should be considered 
implicitly quantified over unless noted otherwise. 
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o an investigation into the modelling of logics in Agda; 

o an investigation into the modelling of substructural logics in Agda; 

o and — concretely — models of linear logic and of the Lambek-Grishin cal- 
culus, and a verification of the correctness of their interpretations in intu- 
itionistic logic. 

Below we will briefly motivate these contributions separately. 

Why model logics in Agda at all? Why should we attempt to model logics 
at all? In our opinion there are several good reasons for doing this. 

First of all, creating a formal model of a logical system forces you to make 
every detail of the system explicit. Not only may this help you by revealing 
small errors that would otherwise have gone unnoticed, but it also forces you to 
scrutinise the precise formulation of your axioms. 2 

Secondly, a model of a logical system in Agda is more than just a proof 
of its sanity. It is also a direct implementation of the calculus, which allows 
you play with your logic in a computational environment, using inference rules 
and proofs as first-class citizens. In addition to this, as mentioned before, the 
correctness of your proofs is checked by Agda's type-checker; and you can use 
theorem provers built in or for Agda, such as Agsy (Lindblad and Benke, 2006), 
to prove theorems in your modelled logic. 

Lastly, for logics which have a computational interpretation in intuitionistic 
logic, you can translate proofs in the modelled logic to terms in Agda, which 
allows you to use Agda's built-in mechanisms for reduction and evaluation. 

Why should we model sub structural logics in Agda? As discussed 
above, most models of logic currently implemented in Agda formalise intuition- 
istic logic. In addition, the manner in which these models are implemented 
usually leaves the structural rules implicit, making them unsuitable for formal- 
ising substructural rules. 

In recent years, however, substructural logics have seen a surge in fields as 
diverse as philosophy (relevant logics), linguistics (the Lambek calculus) and 
computing science (linear logic) (Restall, 2011). We therefore think it useful to 
examine the modelling of such logics in Agda as well. 

Furthermore, when viewed from the perspective of Agda, if we can formalise 
a logic with certain properties (such as linearity for linear logic), then we can 
easily prove that, when we reify terms of this logic back into Agda, the cor- 
responding Agda terms will share this property. This allows us to embed, for 
instance, provably linear lambda terms in Agda. 

2 An example: a common formulation of the exchange principle is T, B, A, A h C — > 
FA, B,A\-C. However, using this principle to define, for instance, the swapping of two 
contexts A,F h A — > T, A h A requires a number of applications quadratic in the lengths of 
T and A. 
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Why model the Lambek-Grishin calculus? The formulation of the Lambek- 
Grishin calculus (LG) modelled in this paper is quite a complex system. It is 
a substructural logic based on the non-associative Lambek calculus (NL), but 
adds the dual for each connective (Moortgat and Moot, 2013). It is formulated 
in the style of display logic (Bclnap, 1982), and uses techniques such as polar- 
isation and focusing (Andreoli, 1992). We therefore feel that it would be an 
interesting enterprise to model the Lambek-Grishin calculus, as it allows us to 
examine not only the formalisation of substructure in isolation, but also in the 
presence of other techniques. 

And, since LG is a very complex logical system, we hope that an explicit 
and interactive formalisation may be able to aid students in understanding it — 
especially those coming from a background in computer science. 

Since this paper is by no means a complete introduction to Agda or to dependently- 
typed programming, we advise the interested reader to refer to Norell (2009) 
for a detailed discussion of Agda in general, or to the list of Agda tutorials 
maintained on the Agda website. 3 

Before we start off, it should be mentioned that (although we omit some of the 
more tedious parts) this paper is written in literate Agda, and the code has 
been made available on GitHub. 4 

2 Intuitionistic Logic 

2.1 Modelling IL with de Bruijn indices 

If we wish to model the intuitionistic calculus, we first have to do something 
about our notation. The reason for this is that the usual notation with named 
variables introduces a whole host of problems, such as checking for proper scopal 
and binding relations. 0 

The canonical solution to this is a notation introduced in de Bruijn (1972), 
where we instead of using variable names for binding, we will use numbers. The 
semantics of these numbers will be that they tell you how many lambdas up the 
variable is bound (or, from the perspective of logic, they are indices into the 
context). See Figure 1 for an example of how terms in named notation compare 
to terms in de Bruijn notation. 

As a preparation for the modelling of the intuitionistic calculus in Agda, we 
can formulate the de Bruijn notation as a set of inference rules; the result of 
this can be seen in Figure 2. 

As a first step of we will need a representation of the type language/formulas 
that we wish to model. In this paper we will limit ourselves to formulas con- 
taining implication (written _=>_) and conjunction (written _x_). 

3 See http: //wiki .portal . Chalmers . se/agda/pmwiki .php?n=Main. Dthertutorials. 

4 See https://github.com/pepijnkokke/SubstructuralLogicsInAgda. 

5 See Erdi (2013) for an implementation that uses variable names. 



3 



Named 



de Bruijn 



Ax — > x AO 

Xx — > Ay — > x A A 1 

Xx -> Xy -> Xz -> a; z (y z) A A A 2 0 (1 0) 

Figure 1: Named notation versus de Bruijn notation (Mazzoli, 2013). 



; ; AX 

T h (var i) : r t 



T,A h t:B r h s-.A^-B rnj 



T h (abs i):A^B V h (app s t) : B 

V h s : A r h f.B . , r h s : A x B A,B,T h t : C 



T h (pair s t) : A x B r h (case s():C 

Figure 2: Inference rules for IL corresponding to the de Bruijn notation. 



In addition, we will abstract over some type U. The reason for this is that 
we do not want to be forced to specify the atomic types — instead we shall allow 
the user to provide their own universe of atomic types. 6 

data Type : Set where 
el : (A : U) -> Type 
_x_ : Type — > Type — > Type 
_ =► _ : Type — > Type — > Type 

All that is left for us to do, is to translate our inference rules as presented 
in Figure 2 to an Agda data type. The translation is almost verbatim, save 
that we write _ — > _ for the meta-logical implication (instead of a horizontal 
line) and — due to the close relationship between proofs and terms — the term 
constructors (var, abs, case, et cetera) become constructors of our data type. 

We use vectors 7 to model contexts, and finite sets 8 to model the de Bruijn 
indices. In this way we can ensure that every variable is bound, 9 either to a 
type in the context or to a lambda abstraction. 10 Because of this invariant we 
can define a safe lookup function as follows. 

lookup : Fin k — > Vec A k — > A 

lookup zero (A, l~) = A 

lookup (sue x) (A, T) = lookup x f 

6 For an example of this, see §§ 4.5. 

7 See http://agda.github.io/agda-stdlib/html/Data. Vec. html#604. 

8 See http://agda.github.io/agda-stdlib/html/Data. Fin. html#775. 

9 The reason this works is because vectors encode lists of a fixed length k, and finite sets 
encode a data type with precisely k inhabitants. 

10 It should be stated that throughout this paper we will use an alternative notation for 
lists and vectors, using _, _ for the cons operator and 0 for the empty list (or vector), as we 
deem this notation to be better suited to sequent contexts. For the concatenation of contexts, 
however, we will stick to using _4f_, as usual. 
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And using this function we can present a full formalisation of our inference 
rules. 

data _h_ : (l~ : Vec Type k) (A : Type) — > Set where 
var : (x : Fin k) — > T h lookup x f 
abs : A, Tl-B— >TI-A => B 

app : r h a ^ B^ri-A->ri-B 

pair : r h A ^ T h B ^ T h A x B 
case : l~ h A x B— >A, B, rhC^rhC 

In § 1 we mentioned that one of the advantages of modelling a logic in Agda 
was the use of Agda's interactive proof assistant. Below we will demonstrate 
how the proof assistant might be used to formulate a proof. 

Agda allows you to leave holes in expressions; for every hole you leave, Agda 
will report the type of the expressions needed to plug that hole. For instance, in 
the example below we try to prove the commutativity of _ x _ . After an initial 
lambda abstraction, we leave a hole, and Agda tells us the type it is expecting 
at that position. 

swap : TI-AxB => BxA 
swap = abs { }0 

{}0 : Ax B, TI-BxA 

This provides us with enough information to continue the proof. Let us assume 
that after introducing a case statement and a pair introduction, we become 
confused about the exact order our variables are in, so we once again ask Agda 
to tell us which sub-proofs we need to give. 

swap : TI-AxB =>■ BxA 

swap = abs (case (var zero) pair ({ }0 { }1)) 

{ }0 : A, B, A x B, T h B 
{ }1 : A, B, A x B, T h A 

This gives us enough information to complete the proof entirely — in fact, both 
holes can be trivially filled by the Agsy theorem prover, 11 resulting in the fol- 
lowing proof. 

swap : ThA x B => B x A 

swap = abs (case (var zero) (pair (var (sue zero)) (var zero))) 
This proof corresponds to the following typeset proof in natural deduction style. 



AX AX 

A, B,rh (var 1) : B A, B ,T h (var 0) : A 

x-intro — - — ; ; — AX 



A,B,Th (pair (var 1) (var 0)) : B x A Ax B,T h (var 0) : A X B 

A x B,r h (case (var 0) (pair (var 1) (var 0))) : B x A 
T h abs (case (var 0) (pair (var 1) (var 0))) : Ax B ^ B x A 



See http : //wiki .portal . Chalmers . se/agda/pmwiki . php?n=Main. Auto. 
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2.2 Exchange as admissible rule 



While the above model of IL suffices if all we wish to model is the intuitionistic 
calculus, it poses some problems if we wish to model substructural logics such 
as linear logic. 

The reason for this is that the structural rules (exchange, weakening and 
contraction) are admissible rules in our formulation, i.e. they are implicitly 
present in our formulation of IL. 

We shall demonstrate this by giving an explicit formulation of the following 
simple exchange principle: exchange at the i-th position. 

T,B,A,AhC 
r,A,B,Ah C 

We can define this principle in three steps. First we define what exchange does 
on the level of contexts. 

exch : (i : Fin k) — > Vec Type (sue k) — s> Vec Type (sue k) 
exch zero (A, B, l~) = B, A, l~ 
exch (sue i) (A, l~) = A, (exch i l~) 

Secondly, we define what an exchange does at the level of the indices. Note that 
the way we implement this is by returning a new index, paired with a proof that 
the lookup function will return the same result when we use this new index with 
the exchanged context, as when we use the old index with the old context. 

lemma-var : V i x — > 3 X y — > lookup x f = lookup y (exch i l~) 

lemma-var zero zero = sue zero, refl 

lemma-var zero (sue zero) = zero, refl 

lemma-var zero (sue (sue x)) = sue (sue x), refl 

lemma-var (sue i) zero = zero, refl 

lemma-var (sue i) (sue x) = map sue id (lemma-var i x) 

Finally, we can define exchange as a recursive function over proofs, where we 
recursively apply exchange to every sub-proof until we reach the axioms (or 
variables), at which point we use the lemma we defined above. 12 

exch : V i -> l~ h A -» exch i l~ h A 

exch i (var x) with lemma-var i x 

exch i (var x) | y, p rewrite p = var y 

exch i (abs t) = abs (exch (sue i) t) 

exch i (app s t) = app (exch i s) (exch i t) 

exch i (pair s t) = pair (exch i s) (exch i t) 

exch i (case s t) = case (exch i s) (exch (sue (sue i)) t) 



12 Note that this is also what makes exchange admissible instead of derivable: we need to 
inspect the proof terms in order to be able to define it. 
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2.3 Explicit structural rules 



If we wish to make our model of IL suitable for modelling substructural logics, 
we will have to remove the implicit exchange, weakening and contraction from 
our axioms, and add them as axioms in their own right. 

The reason that the structural rules are implicitly present in our logic, is 
that all premises in our inference rules share a context. If we make sure that 
every premise of a rule has its own context, and all contexts are concatenated in 
the conclusion, we will have solved our issue. A surprising side-effect of this is 
that variables will no longer be needed — simply marking the position in a term 
as an axiom is sufficient. As a consequence of this, we can stop using vectors 
for modelling contexts, and switch to using simple lists. 

Below you will find a model of IL in which the structural rules have been 
made explicit. 13 



data h 


: V (X : List Type) (A : Type) -> Set where 


var 


A, 0 h A 


abs 


A,XhB— >XhA => B 


app 


XhA =► B — > Y h A — > X -H- Yh B 


pair 


Xh A-> Yh B->X 4f Yh A x B 


case 


XhA x B— >A, B,YhC— >X 4h Yh C 


weak 


XhA^X -H- Yh A 


cont 


A, A, X h B — > A, X h B 


exch 


(X 4h Z) 4h (Y 4h W) h A 



-> (X -H- Y) -ff (Z -ff W) h A 



Using this model we can once again prove our running example — the com- 
mutativity of _ x _. 

swap :XhAxB=>BxA 

swap = abs (case var (excho (pair var (weak var)))) 



2.4 Reification into Agda 

Another advantage of modelling logics we mentioned in § 1 is that one can reify 
proofs in the modelled system back into Agda terms, and in this way piggyback 
on Agda's evaluation mechanisms. 

In this section we will present a reification of our explicit IL terms into Agda 
terms. But first we will give a general definition of what a reification is. 

A reification generally consists of two parts: 15 

o a translation function (written [_]) that sends types in the source logic 
to types in the target logic; 

13 Note that the exchange principle we chose here is slightly different from the exchange 
principle we proved above, in that it allows the exchange of entire contexts. 

14 In the proof we use a derived inference rule, excho, which has the type B,A,X h C — > 
A,B,Xh C, i.e. it exchanges the first two types in the context. 

15 tmplicit in the below definition are the data types for the types of the source and target 
logics, and the data types for the proofs or terms of the source and target logics. 
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o a translation function (written [_]) that sends terms in the source logic to 
terms in the target logic. 

First of all, let us look at the translation of our IL types into Agda's Set. Since 
we cannot know what to map types in the user-provided universe U to, we 
shall require the user to provide us with a translation function [_]". With this 
function, the full translation is trivial. 

[J : Type -> Set 
[el A ] = [A]" 
[A x B ] = [A] x [B] 
[A =► B] = [A]->[B] 

Next we will look at the translation of proofs into Agda terms. Unfortunately 
for us, Agda has no explicit notion of contexts. We could therefore require 
that the proofs we translate are closed terms, i.e. of the form 0 h A. Another 
solution, however, is to invent our own encoding of contexts. 

So let us ask ourselves, what is a context? The answer: a context is a list of 
types associated with a list of values of those types. Or to phrase it the other 
way around: a list of values typed by a list of types. This means we can use 
heterogeneous lists (Kiselyov et al., 2004) to encode our contexts. 

data Ctxt : V (X : List Set) -> Seti where 
0 : Ctxt0 

_,_ : A— > Ctxt X -» Ctxt (A, X) 

Using this definition, our representation of a sequent X \- Am Agda will be the 
type Ctxt [X] -> (Aj. 

Next we need a few simple functions to work with these contexts. Specifically, 
an exch function, which applies our exchange principle to the context, and a split 
function, which splits a context into two parts (for binary rules). 

exch : Ctxt ((X -H- Y) 4f (Z -H- W)) -> Ctxt ((X +f Z) 4f (Y 4f W)) 
split : Ctxt (X -H- Y) -> (Ctxt X) x (Ctxt Y) 

For brevity's sake, we will omit the definitions for these functions. The interested 
reader can refer to the code for a full account. Instead we will present the reader 
with the full reification into Agda. 

The reification is fairly straightforward: we simply have to map the con- 
structors of our model to the corresponding constructs in Agda. 

In the case of variables, we know that the environment will contain exactly 
one value of exactly the right type, for lambda abstractions, we abstract over a 
value, which we insert into the context, et cetera. Note that for binary rules 
we have to split the context, and pass the two parts down the corresponding 
branches of the proof during reification. 

reify : X h A -> (Ctxt [ X ] -> [ A ]) 

reify var (x, 0) = x 

reify (abs t) E = X x — > reify t (x, E) 
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reify (app s t) E with split E 

... | E S ,E* = (reify s E s ) (reify t E<) 

reify (pair s t) E with split E 

... | E S ,E* = (reify s E s , reify t E') 

reify (case s t) E with split E 

... | E S ,E* = case reify s E s of X {(x,y) reify t (x,y, E*)} 

reify (weak s) E with split E 
... | E S ,E* = reify sE s 

reify (cont t) (x, E) = reify t (x,x, E) 

reify (exch t) E = reify t (exch E) 

We can now define the reification function [_] as a simple alias. 

[_] : X h A — >• (Ctxt [ X ] — >• [ A ] ) 
[_] = reify 

And translate our running example into Agda. Note that we can already insert 
the empty context, as our example is a closed term. 

swap' : [A]x[B]^[B]x[A] 
swap' = [swap] 0 



3 Linear Logic 

3.1 Moving down to linear logic 

As we have taken care to make all structural rules explicit, moving down to 
intuitionistic linear logic (LP) from our current model of IL is trivial. As a 
first step we define a new model for our types, to match the conventions of 
linear logic (we are adding bottom as an atomic type here, as we will need it 
later on). 

data Type : Set where 
el : (A : U) -> Type 

_L : Type 

_®_ : Type — > Type — > Type 
_ : Type — > Type — > Type 

Next we can create the model of LP by copying our explicit model for IL, and 
simply removing the axioms for weakening and contraction. 

data _h_ : V (X : List Type) (A : Type) -> Set where 
var : A, 0 h A 

abs : A,X h B -> X h A -o B 
app : XhA ^ B^YhA^X * YhB 
pair : XhA^YhB^X + YhA®B 
case : XhA®B— >A, B,YhC— >X -ff- YhC 
exch : (X -H- Z) -H- (Y -H- W) h A 
-S- (X 4f Y) -ff (Z 4f W) h A 
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And, since we added an atomic type for bottom, we can also add the usual 
definition for negation. 

^_ : Type — > Type 

-. A = A -o _L 

Now we can define our running example. In fact, the definition has hardly 
changed since § 2. The only difference is that now the term has to be closed, as 
swapping in the presence of a context is not linear. 

swap : 0 h A ® B -o B ® A 

swap = abs (case var (excho (pair var var))) 

As a new example, we can also give a proof for the validity of type-raising. 

raise : XhA^Xh(A ^. B) ^ B 
raise t = abs(appvart) 



3.2 Reification into IL 

We could define the reification of LP into Agda as we showed for IL, but it 
is much easier to translate our proofs to IL and use the previously defined 
reification. 

We first define a translation of our types into the types of IL. Note that we 
have abstracted over an element of the user-provided type universe U — called 
R — to which we will map bottom in the translation of our types. 

[J : Type -> Type" 

[ ± ] = el R 

I el A ] = el A 

[A® B ] = [AJ x IB] 

[ A — o B ] = [A] =► IB] 

Next we define a translation function that maps contexts in LP to contexts IL. 
Note that the implementation simply applies the translation function to every 
element in the context. 

I_] : List Type -> List Type IL 
I_] = map I_] 

Last, we define a translation from LP to IL. The translation is almost able 
to reconstruct the proof in IL verbatim, though we are omitting some minor 
details. 16 

tolL : X h A — > I X ] hj£ I A ] 
tolL var = var 



16 The problematic details have to do with the application of [_] to contexts; we have 
to rewrite using a lemma that states that \X 4f V] = \X\ -ff IX] , i-e. that our translation 
commutes over context concatenation, for every binary rule. 
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tolL (abs t) = abs (tolL t) 

tolL(appst) = app (tolL s) (tolL t) 

tolL(pairst) = pair (tolL s) (tolL t) 

tolL (case s t) = case (tolL s) (tolL t) 

tolL (exch t) = exch (tolL t) 

Then we can define the reification of closed terms into Agda by simple function 
composition. 

[_] : XhA^(CtxtI[X]]^[[A]]) 
[_] = [_potolL 

And again, we can reify our (now linear) swap function back into Agda. 

swap' :[[A]]x[[B]]-^[[B]]x[[A]] 
swap' = [swap] 0 



4 Lambek-Grishin Calculus 

The Lambek-Grishin calculus finds its origins in formal linguistics, where it 
is used to model natural language syntax. It is a symmetric version of the 
Lambek calculus, which means that in addition to left and right implication and 
conjunction, we have left and right difference (the operators dual to left and 
right implication) and disjunction (dual to conjunction). The basic inference 
rules for these (dual) connectives, together with a set of interaction principles 
between the connectives and their duals, allow for the treatment of patterns 
beyond the context-free, which cannot be satisfactorily handled in traditional 
Lambek calculus. 

The formulation of the Lambek-Grishin calculus that we will model is the 
formulation developed in Moortgat and Moot (2013), which uses the mechanisms 
of polarity and focusing together with concepts from display logics to ensure, 
amongst others, that all proof terms are in normal form. 

Below we will present a formalisation of LG, discussing the roles these mech- 
anisms play in our model in turn. 

Since this paper is not by far a complete discussion of the Lambek-Grishin 
calculus, we refer the interested reader to Moortgat and Moot (2013) or Bas- 
tenhof (2013). 

4.1 Basic types and polarisation 

The Lambek-Grishin calculus as developed in Moortgat and Moot (2013) is a 
polarised logic. Therefore, we will have to define a notion of polarity. 

data Polarity : Set where 
+ : Polarity 
— : Polarity 
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Using this definition, we can define our types as below. 



data Type 


: Set where 




el 


(A : 


U)->(p 


Polarity) — > Type 


_®_ 


Type 


— > Type - 


■> Type 


_\_ 


Type 


— > Type - 


■> Type 


_/_ 


Type 


— > Type - 


■> Type 


_®_ 


Type 


— > Type - 


> Type 


_0_ 


Type 


— > Type - 


> Type 


_0_ 


Type 


— > Type - 


> Type 



While the atomic types are assigned a polarity, the polarity of complex types is 
implicit in the connectives. We shall therefore define a pair of predicates that 
have inhabitants only if their argument is a positive or negative type. 

data Pos : Type — > Set where 
el : V A -> Pos (el A +) 

_0_ : V A B — > Pos (A (g> B) 
_0_ : V B A -> Pos (B 0 A) 
_0_ : VAB-> Pos (A 0 B) 



data Neg : Type — > Set where 
el : VA^ Neg (el A — ) 
_0_ : VAB-> Neg (A © B) 
_ \ _ : V A B -> Neg (A \ B) 
_/_ : V B A -> Neg (B / A) 

We can trivially show that polarity is a decidable property, and that every type 
is either positive or negative. 

Pol? : V A — > Pos A ttl Neg A 

Pol? (el A +) = inji (el A) 

Pol? (el A — ) = inj 2 (el A) 

Pol? (A 0 B) = inji (A 0 B) 

Pol? (A 0 B) = inji (A 0 B) 

Pol? (A 0 B) = inji (A 0 B) 

Pol? (A © B) = inj 2 (A © B) 

Pol? (A \ B) = inj 2 (A \ B) 

Pol? (A / B) = inj 2 (A / B) 

We also define Pos? and Neg?, which are decision procedures for the predicates 
Pos and Neg. Using these decision procedures, we can implicitly restrict the 
usage of inference rules to types of a certain polarity using a well-known Agda 
trick. For instance, the full type of the ^.-rule (see §§ 4.3) is: 

fj, : V {X A} { p : True (Neg? A) } -> X h ■ A ■ -> X h [A] 

The idea behind this type is that, since we know that the decision procedure 
Neg? terminates, we can run it during type-checking to see if we can construct 
a witness of Neg A. If we can, True (Neg? A) reduces to to the unit type T, and 
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its value is trivially inferred; if we cannot, it reduces to the empty type _L — for 
which we know that we cannot construct an inhabitant — and a type-error is 
raised. 1 ' 

4.2 Contexts and the display property 

Since the Lambek-Grishin calculus is a display calculus, we will also have to 
model polarised structures (positive/input structures for the antecedent, nega- 
tive/output structures for the succedent). In this case, the formulas that can 
appear as arguments to a connective are actually limited by their polarity, so 
we can encode the polarities at the type-level. 

mutual 

data Struct + : Set where 
•_• : Type — > Struct + 
_<g)_ : Struct + -> Struct+ -> Struct+ 
_0_ : Struct+ -> Struct - -> Struct+ 
_S>_ : Struct - Struct + Struct+ 

data Struct - : Set where 
•_• : Type — » Struct - 
_©_ : Struct" — > Struct - — > Struct - 
_ \ _ : Struct + — > Struct - — > Struct - 
_ / _ : Struct - — ► Struct + — > Struct - 

As a consequence of this, we do not have to bother with predicates for polarity 
in the case of structures, as a structure's polarity is immediately obvious from 
its type. 

As LG is formulated as a display logic, we define a left and a right inference 
rule for each connective, where the one is a rule that simply structuralises the 
formula, and the other eliminates the connective when it appears as the outer- 
most connective on both sides. Which is which depends on the polarity of the 
connective (i.e. on which side it naturally occurs). As an example, the left and 
right rules for _CS>_ are presented below. 

®L : - A- ® - B- hX^-A ® B hX 

<g> R : X h [A] -» Y h [B] -> X ® Y h [A ® B] 

4.3 Inference rules for focused sequents 

Since LG is a focused calculus, and thus has several kinds of sequents, we will 
have to define its inference rules in several data types. Every inference rule is 
defined in the data type corresponding to the sequent-type of its conclusion. 

Though it is a bit verbose, due to LG's many inference rules, we would like 
to present the reader with the complete definition below. 

17 See http : //agda. github . io/agda- stdlib/html/Relation . Nullary . Decidable . html# 
783 for the complete implementation. 
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Note we use the technique discussed in §§ 4.1 to restrict the applications of 
fl and jit* to the cases where A is positive and of /i and ft* those where A is 
negative. We will discuss the motives behind this in §§ 4.4. 



mutual 
data _h 

var 

0 R 
0 R 
S R 
data [_] 
covar 
A 

©L 
\ L 
/ L 
data _h 

M* 
p* 
0 L 
0L 
0L 
© R 
\ R 
/ R 

resi 

res2 

res 3 

res4 

dresi 

dres2 

dres3 

dres4 

disti 

dist2 

dist 3 

dist4 



_] : Struct+ 
• A • h [A] 
X h ■ A 
Xh [A] 
Xh [A] 



Type — > Set where 



fAl hX 



[A] 
■ A 
[Al 



Type 
h • A ■ 

hX- 
, h Y-> 
X h [A] — > 
[A] h 

: Struct" 1 " 

X h [A] — > 
[A] hX^ 
■ A ■ 0 • E 



•Xh [A] 
Yh[B]- 
[B] h Y - 
Yh[B]- 

■> Struct - 



0 Yh [A 
0 Yh [A 
0 Yh [A 

Set where 



0 



• A • 
■ A ■ 
Xh 
Xh 
Xh 



0 ■ B 
0 ■ B 
A • © 
A- \ 
A- / 
Yh X \ Z 
X 0 Yh Z 
Xh Z / Y 
X 0 Yh Z 
Z 0 Xh Y 
Zh Y © X 
Y 0 Z h X 
Zh Y © X 
X 0 Yh Z 
X 0 Yh Z 
X 0 Yh Z 
X 0 Yh Z 



. [A] h X 
[B] h X - 
[B] h Y - 
Xh[B]- 

— > Struct" 
X h ■ A ■ 
■ A ■ h X 
;-hX^ 
; ■ h X -> 
; ■ h X^ 
) • B 

■ B ■ 

■ B ■ 
: X 



[A 
[A 
[A 



© B] h X 
\ B]hX 
/ B] h Y 

Set where 



Y 
Y 

X 



■ A 0 

■ A 0 

■ A 0 
Xh ■ A 
Xh 
Xh 
Yh 

YhX \ 
X 0 Yh 
X h Z / 

zhY a 

Z 0 XhY 
ZhY © X 



A 
A 

Z 

Z 

Z 

Y 

X 



h X 
h X 
h X 
B ■ 
B ■ 
B ■ 



© 



Y 0 



Z h X 

X 0 Wh z 
Y 0 WhX 
Z 0 Xh w 
Z 0 YhX 



Y 
Z 
Y 
W 



As we have dropped exchange, we will have to let go of our running example. 
Instead we will present the proof of the law of raising, and its dual law of 
lowering. 



raise : ■ A ■ h • (B / A) \ B ■ 

raise = \ R (res2 (res3 (p,* ( / L covar var)))) 

lower : • B 0 (A 0 B) ■ h ■ A ■ 

lower = 0l_ (dres2 (dres;? (fj,* (0R covar var)))) 
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4.4 Reification into LP 



Finally, we will present the reification of LG terms into LP, as we did for LP 
to IL in §§ 3.2. Since LG is a classical logic, in the sense that every connective 
has a dual, we cannot give it a direct interpretation in the intuitionistic LP. 

The term language of LG, however, is a refinement of the A/x/i-calculus as 
developed in Curien and Herbelin (2000), which has a known computational 
interpretation through translation to Parigot's A/i-calculus. Therefore, we can 
give an interpretation through a CPS-translation. 

Below we formalise the CPS-translation of LG as presented in Moortgat and 
Moot (2013). The idea of the CPS-translation is to interpret all connectives as 
a conjunctions, and use the polarities of the connectives and their argument 
positions to guide the introduction of negations — when the natural polarity of 
an argument position clashes with the polarity of its inhabitant, we lift the 
inhabitant's type to a continuation. 

mutual 



_] + 


: Type — > 


Type iP 








el A 


+ ] + = 


el A 








el A 


- ] + = 


-h el A) 






A ® 


B]+ = 


[A] 


+ 0 


IB] 


] + 


A 0 


BJ+ = 


[A] 


+ 0 


IB] 


]" 


A ® 


BJ+ = 


[A] 


0 


IB] 


1 + 


A 0 


BJ+ = 


-([A] 


0 


IB] 


r) 


A \ 


B ]+ = 


-([A] 


+ 0 


IB] 


]") 


A / 


B ]+ = 


-(I A] 


0 


IB] 


i + ) 


:_r 


: Type — > 


Type*" 








el A 


+ r = 


-. el A 








el A 


- r = 


-. el A 








A 0 


Br = 


-(I A] 


+ 0 


IB] 


i + ) 


A 0 


b i~ = 


-(I A] 


+ 0 


IB] 


]-) 


A 0 


BP = 


-([A] 


0 


IB] 


D + ) 


A © 


BP = 


[A] 


0 


Ib; 


r 


A \ 


BP = 


IA] 


+ 0 


IB] 


r 


A / 


BP = 


IA] 


0 


IB] 


D+ 



In addition to this, we define a CPS-translation of positive and negative struc- 
tures. This translation is much the same, but since the structures' types enforce 
that no clashes in polarity occur, no negations are introduced. 

Below we will present an implementation of the reification function up to 
exchange (that is, we do not show applications of the exchange principle). 

As we stated above, we interpret all connectives as pairs. Therefore, all left 
and right rules are interpreted as (^-introduction or (^-elimination. 

The fi- and /i-rules are translated as lambda abstractions, and the fi* and 
/i-rules are translated as applications. However, if you look closely at the types, 
you will notice that the sequents /i and fl are translated to do not necessarily 
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derive function types — and neither do the sequents for the first arguments of /z* 
or /x. This is where the polarity restrictions come in: we restrict the application 
of these rules to a certain polarity, so we can later use this fact to prove that a 
clash in polarities must occur during the CPS-translation, and therefore that a 
function-type must be generated, using the following lemmas. 

;a]+ = 

AT = 



Neg- 
Pos-; 



Neg A 
Pos A 



a; 
a 



_L 
_L 



Lastly, variables and co- variables are both simply translated as variables. 18 
mutual 

:ify r : V {X A} -> X h [A] -> [ X ] h LP [ A ] + 



Xh[A]->[X; 
fy r var = var 

fy r (/x t) rewrite l\leg-= _ = abs (reify t) 
fy r (0R st) = pair (reify 1- s) (reify 1- t) 
fy r (0R st) = pair (reify 1- s) (reify 1 t) 
fy r (®R s t) = pair (reify 1 s) (reify 1- 1) 

fy 1 : V{AY}^[A]hY^[Y] h iP [A]- 

fy covar = var 

fy (/x t) rewrite Pos-= _ = abs (reify t) 

fy 1 (©L s t) = pair (reify 1 s) (reify 1 t) 

fy 1 ( \ L s t) = pair (reify 1- s) (reify 1 t) 

fy 1 ( / L s t) = pair (reify 1 s) (reify 1- 1) 

fy : V{XY}->XI-Y->[[X] 4f [Y] \~lp J- 
fy (/i* t) rewrite Pos-= _ = app var (reify 1- 1) 
rewrite Neg-= _ = app var (reify 1 t) 



fy QET t) 
fy (0L t) 
fy (0L t) 
fy (0L t) 
fy (©R t) 
fy ( \ R t 
fy ( / R t 



= case var 

= case var 

= case var 

= case var 

= case var 

= case var 



(reify t) 
(reify t) 
(reify t) 
(reify t) 
(reify t) 
(reify t) 



Using the above definition, we can now define the function for CPS-interpretation 
of LG by composition. 



X h [A] -> (Ctxt 
= [-} LP o reify r 



X 



4.5 Examples from natural language 

In this final section we will demonstrate a possible usage of our model of LG. 
We will derive the denotation of the following example sentence. 

18 In Moortgat and Moot (2013), applications of the var and covar rules is also limited to 
certain polarities. However, we do not need this fact to implement the CPS-translation, and 
therefore we have chosen not to add this restriction. A benefit of this is that defining derived 
inference rules becomes much more manageable, as we no longer have to ensure that the used 
variables have a certain polarity. 
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"Everyone finds some unicorn. " 

First, we define a couple of meaning postulates. For brevity's sake, we will also 
postulate the existence of an Entity type with the corresponding universal and 
existential quantifiers, though we could trivially define this ourselves. 

postulate 

Entity 
_D_ 
FORALL 
EXISTS 
PERSON 
FIND 
UNICORN 

Secondly, we must define our type universe. In this case we will define it to be 
the usual set of atomic syntactic types. 

data U : Set where S N NP : U 

LP = U -> Set 

[ S j u = Bool 

[ N j u = Entity -> Bool 

[NP]" = Entity 

Next, we define our lexicon. The entries of our lexicon are lambda terms typed 
by the translations of their syntactic types. 



everyone 


: [ (el NP + / 


el N +) ® el N + ] 


everyone 


= ((X{(A,B)- 


-> FORALL (X x — > B x D A x) }), PERSON) 


finds 


: [ (el NP + \ 


el S -) / el NP + ] 


finds 


= X{((x,k),y) 


-> k (FIND y x)} 


some 


: [el NP + / 


el N + ] 


some 


= X{(A,B)^ 


EXISTS (X x — > A x A Bx)} 


unicorn 


: [ el N + ] 




unicorn 


= UNICORN 





Last, since we have not yet proven decidability, we have to give a proof that our 
sentence structure is syntactically correct. 

sent : 

■ (el NP + / el N +) ® el N + -- everyone 

• ® (■ (el NP + \ el S -) / el NP + - finds 

• ® (• el NP + / el N + -- some 

• (g) • el N + • — unicorn 
))h[elS-] 

sent = 

/x (res 3 (<g)L (res 3 (jT ( / L ( 

fi (res4 (resi (resi (res3 (p,* ( / L ( 

/i (res 2 (res 3 (fl* ( / L ( \ L var covar) var))))) var))))))) var))))) 

With all these components, we can finally compute the meaning of our sentence, 
leaving our meaning postulates unevaluated as usual. 
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Bool -> Bool -> Bool 
(Entity -»■ Bool) -»■ Bool 
(Entity -> Bool) -»■ Bool 
Entity -> Bool 
Entity — >■ Entity — ► Bool 
Entitv — > Bool 



[sent] (everyone, finds, some, unicorn, 0) ~-+P 
X k -> FORALL (X xi -> PERSON xi D EXISTS (X x 2 -> k (FIND x 2 xi) A UNICORN 



5 Future work 

Reiflcation of properties. When we reify a term in a substructural logic 
into Agda, we lose the information regarding its behaviour. For instance, if we 
have an proof in the presented model of LP, we would like to be able to obtain 
a proof of linearity for the reified term. 

Decidability of focus shifting. If we could implement a decision procedure 
for the focus shifting principles (not discussed in this paper; a sequence of unfo- 
cused rules, started by a ^.-application and terminated by a ^-abstraction), we 
could add them as derived rules to our model of LG. This would make writ- 
ing proofs much easier, and would be a good step in the direction of proving 
decidability of LG in general. 

Decidability of LG. We could implement a decision procedure for LG in 
general. Using this procedure we would no longer have to manually prove syn- 
tactic correctness. In addition to this, if we implemented decidability of LG 
plus associativity, we could use the resulting procedure as an implementation of 
parsing-as-deduction. 

Mirror symmetries. Another property of LG is that types and proofs obey 
certain mirror symmetries (due to the presence of dual operators and directional 
implications) . Implementing these symmetries as functions on types and proofs 
would allow us to easily construct the duals of types and their proofs, and would 
aid in the understanding of these dualities. 

Extract Haskell library. Since Agda supports the extraction of programs 
into several languages (most notably Haskell and JavaScript) we could inves- 
tigate the extraction of an optimised Haskell library for LG (and its use in 
natural language processing) from our implementation. 

6 Conclusion 

We have presented the reader with several models of intuitionistic logic, and 
examined several models for substructural logics (linear logic and the Lambek- 
Grishin calculus). We have shown how proofs in these models can be given 
an interpretation in Agda through reification and translation. And, last, we 
have demonstrated the usage of our models in an example taken from formal 
linguistics. 
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